External check
CVE-2014-6395: RESERVED CVE-2014-6396: RESERVED CVE-2014-8120: RESERVED CVE-2014-9323: RESERVED CVE-2014-9376: missing from list CVE-2014-9377: missing from list CVE-2014-9378: missing from list CVE-2014-9379: missing from list CVE-2014-9380: missing from list CVE-2014-9381: missing from list -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the script was run. -- To UNSUBSCRIBE, email to debian-security-tracker-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/54912638.c4wr99yxjtzpjeh9%atomo64+st...@gmail.com
Bug#773322: security-tracker: DSA-3104-1 vs. tracker
Package: security-tracker Severity: normal Hello! DSA-3104-1 [1] states, in part: | An older security vulnerability, CVE-2004-2771, had already | been addressed in the Debian's bsd-mailx package. However, the tracker [2] seems to disagree, as it claims that all versions of bsd-mailx in Debian are currently vulnerable... I think the problem is an extra epoch in the (unstable) fixed version for bsd-mailx: this time the epoch is in the tracker data, but not in the actual package versions (contrary to the usual missing epoch issues that I frequently spot!). Please fix the tracker data. Thanks for your time! [1] https://lists.debian.org/debian-security-announce/2014/msg00294.html [2] https://security-tracker.debian.org/tracker/CVE-2004-2771 -- To UNSUBSCRIBE, email to debian-security-tracker-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141216215002.4796.83564.reportbug@homebrew
Bug#773298: marked as done (security-tracker: DLA-112-1 miscrepancy)
Your message dated Tue, 16 Dec 2014 20:15:05 +0100 with message-id <201412162015.17720.hol...@layer-acht.org> and subject line Re: Bug#773298: security-tracker: DLA-112-1 miscrepancy has caused the Debian Bug report #773298, regarding security-tracker: DLA-112-1 miscrepancy to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 773298: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773298 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: security-tracker Severity: normal Dear Maintainer, https://security-tracker.debian.org/tracker/DLA-112-1 and https://security-tracker.debian.org/tracker/CVE-2014-8500 show the issue fixed in bind9 version 1:9.7.3.dfsg-1~squeeze11 while it's only fixed in squeeze-lts, 1:9.7.3.dfsg-1~squeeze13 1:9.7.3.dfsg-1~squeeze11 present in squeeze and squeeze-security repos ought to show as vulnerable. Regards, Zoran --- End Message --- --- Begin Message --- Hi Zoran, On Dienstag, 16. Dezember 2014, Zoran Dželajlija wrote: > https://security-tracker.debian.org/tracker/DLA-112-1 and > https://security-tracker.debian.org/tracker/CVE-2014-8500 > show the issue fixed in bind9 version 1:9.7.3.dfsg-1~squeeze11 > while it's only fixed in squeeze-lts, 1:9.7.3.dfsg-1~squeeze13 thanks for your bugreport, I've just commited a fix- [20:14] < KGB-2> | holger r30783 data/ DLA/list CVE/list [20:14] < KGB-2> mark CVE-2014-8500 correctly fixed in bind9 version 1:9.7.3.dfsg-1~squeeze13, thanks to Zoran and Raphael cheers, Holger signature.asc Description: This is a digitally signed message part. --- End Message ---
Bug#773298: security-tracker: DLA-112-1 miscrepancy
Package: security-tracker Severity: normal Dear Maintainer, https://security-tracker.debian.org/tracker/DLA-112-1 and https://security-tracker.debian.org/tracker/CVE-2014-8500 show the issue fixed in bind9 version 1:9.7.3.dfsg-1~squeeze11 while it's only fixed in squeeze-lts, 1:9.7.3.dfsg-1~squeeze13 1:9.7.3.dfsg-1~squeeze11 present in squeeze and squeeze-security repos ought to show as vulnerable. Regards, Zoran -- To UNSUBSCRIBE, email to debian-security-tracker-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141216150541.11365.38180.report...@burek.zg.iskon.hr